IDSs (Intrusion Detection Systems) on our network to capture and alert traffic seen as malicious. They can be categorized into 2 types and with 2 different approaches to identifying malicious traffic. Network based, placed on a network segment (a switch port in promiscuous mode). Host based, on a client, normally a server or workstation. Signature (Pattern) matching, similar to anti virus, it matches traffic against a long list of known malicious traffic patterns. Heuristic (Behavioral) based, uses a normal traffic pattern baseline to monitor for abnormal traffic.

UPSs (Uninterruptible Power Supplies): Ensure constant clean power to the systems. Have large battery banks that take over in the event of a power outage; they also act as surge protectors.

Waterfall methodology is well suited for long, very clearly defined projects.

Installation testing: Assures that the system is installed correctly and working at actual customer's hardware.

As part of a clean desk policy we should only use paper copies of sensitive data when strictly needed.

Bell-LaPadula: (Confidentiality) (Mandatory Access Control): Simple Security Property “No Read UP”. Subjects with Secret clearance can’t read Top Secret data. * Security Property: “No Write DOWN”. Subjects with Top Secret clearance can’t write Top Secret information to Secret folders. Strong * Property: “No Read or Write UP and DOWN”. Subjects can ONLY access data on their own level.

Black box software testing: The tester has no details, just the software, they then test for functionality and security flaws.

When we dispose of our data media we are making sure there is no data remanence on our hard disks, tapes, etc.

Half-duplex communication sends or receives at one time only (Only one system can transmit at a time).

Sashimi model (Waterfall with overlapping phases): Similar to waterfall, but we always have 2 overlapping phases, if we close one phase, we add the next phase. The modified waterfall model allows us to go back to the previous phase but no further.